systems/infrastructure
1
Fork 0
Code Issues 1 Pull requests 17 Activity Actions
infrastructure/ansible/roles
History
Jake Howard 7c8d224c4a
Some checks failed
/ ansible (push) Failing after 39s
Details
/ terraform (push) Failing after 46s
Details
Add headscale ACLs 
Tags are managed entirely server side, so there's no priv esc issues.

This lets my devices do what they want, and server style devices can't do anything.
2024-04-20 15:46:21 +01:00
..
adguardhome Add IPv6 support for internal DNS overrides 2024-03-07 20:02:39 +00:00
authentik Update ghcr.io/goauthentik/server Docker tag to v2024 2024-04-15 14:11:11 +01:00
base Allow tailscale IP in more places 2024-02-07 18:21:16 +00:00
commento Use certbot to issue certificates 2023-12-21 16:38:07 +00:00
coredns_docker_proxy Do simple endsWith matching for docker view 2024-01-14 22:27:02 +00:00
db_auto_backup Remove unnecessary extra variable definitions 2023-12-14 22:03:23 +00:00
docker_cleanup Fix references to home dir 2023-06-17 16:00:30 +01:00
dokku Unify nginx configuration 2023-12-16 17:47:04 +00:00
fail2ban_ssh Fix new ansible-lint errors 2023-06-15 15:16:19 +01:00
forrest Allow forrest to access internal services 2024-03-22 18:13:25 +00:00
gateway Allow only exposing services over Tailscale 2024-03-07 22:30:10 +00:00
gitea Remove robots.txt for gitea 2024-03-04 08:38:16 +00:00
gitea_runner Remove unnecessary extra variable definitions 2023-12-14 22:03:23 +00:00
headscale Add headscale ACLs 2024-04-20 15:46:21 +01:00
http_proxy Allow tailscale IP in more places 2024-02-07 18:21:16 +00:00
ingress Allow ingress to serve as tailscale exit node 2024-03-28 23:30:24 +00:00
jellyfin/tasks Use distribution name in repo URL 2021-08-22 14:44:34 +01:00
mastodon Update lscr.io/linuxserver/mastodon Docker tag to v4.2.8 2024-03-04 08:33:51 +00:00
minio Remove unnecessary extra variable definitions 2023-12-14 22:03:23 +00:00
nebula Ignore ansible-lint for nebula install block 2024-01-08 21:49:38 +00:00
nginx Add HSTS to all nginx requests 2024-03-03 21:37:07 +00:00
ntfy Deploy ntfy 2023-12-23 16:40:53 +00:00
paccache Only keep 2 package versions 2022-11-17 20:36:58 +00:00
plausible Use certbot to issue certificates 2023-12-21 16:38:07 +00:00
privatebin Run traefik as dockeruser, and without host networking 2022-01-15 23:44:06 +00:00
pve_docker Remove /tt-rss/ path from URL 2024-04-15 17:33:36 +01:00
pve_nebula_route/tasks Remove separate private and protected IP 2021-03-27 18:42:06 +00:00
pve_tailscale_route/tasks Add routes from forrest to tailscale network 2024-02-07 22:12:08 +00:00
qbittorrent Unify nginx configuration 2023-12-16 17:47:04 +00:00
remark42 Remove unnecessary extra variable definitions 2023-12-14 22:03:23 +00:00
renovate Remove unnecessary extra variable definitions 2023-12-14 22:03:23 +00:00
restic Set password for homeassistant SMB mount 2024-01-03 21:23:49 +00:00
s3_sync Sync terraform state to restic 2024-01-09 19:56:06 +00:00
slides Deploy slides hosting 2024-03-03 21:39:22 +00:00
tandoor Unpin tandoor 2024-04-15 15:28:16 +01:00
traefik Update traefik Docker tag to v2.11 2024-04-15 17:43:05 +01:00
vaultwarden Make vaultwarden VPN only 2024-03-21 23:20:27 +00:00
vikunja Consolidate vikunja container 2024-02-12 14:12:17 +00:00
website Remove website tmpfs 2024-02-01 18:15:51 +00:00
yourls Use gandi as cert resolver for 0rng.one 2023-07-17 14:26:12 +01:00
zfs Fix new ansible-lint errors 2023-06-15 15:16:19 +01:00